CLAIMS IN THE CASE 
Please amend Claims 1, 7, 11, 22, and 36 as follows. 
Please add Claim 3$ 



1. (Currently Amended) A system for providing a firewall to a 
communication device, said system comprising: 

a first device comprising a hardware implemented firewall, said first 
device coupled to a holt device that is coupled to said communication device 
for establishing a connection to a network; 

logic residing ineaid system to allow said communication device to 
establish a connection to the network provided said first device is in said 
syste m, wherein said fii^st device allows said host device to connect to said 
network using said communication device that does not itself have a 
firewall that is accepted Ay the network : and 

said system configiired to cause data transferred by the 
communication device to He processed by said firewall. 



2. (Original) The systen^ of Claim 1, further comprising: 

logic for checking integrity of software components in said system. 

3. (Original) The system o^ Claim 2, further comprising: 

a server for providing policies to be used by said firewall; and 
said first device further comprises stored values to access said server 
to receive the policies. 

4. (Original) The system of Cl^im 1, further comprising: 
a server for providing policies to be used by said firewall; and 
said first device operable to access said server to receive the policies. 
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5. (Original) The system of Claim 4, wherein: 

said sy stem further comprises a plurality of nodes having a 
hardware implemented firewall; and wherein 

said server is further operable to transfer the policies to said plurality 
of nodes, wherein said system comprises a centrally managed network 
having nodes with hardware implemented firewalls. 

6. (Original The system of Claim 1, wherein said logic to allow said 
system to establish a connection to the network comprises a hardware 
implemented token. 



7. (Currently! Amended) The system of Claim 1, further comprising a 
third second device having stored thereon data needed to establish the 
connection to the Network, said ^hird second device coupled to said first 
device, wherein said logic to allow said system to establish the connection is 
operable to access laid data to assure said first device must be in said 
system to establish^ said connection to the network via the communication 
device. 



8. (Original) The system of Claim 1, further comprising: 

an alert log for logging possible breaches detected by said system. 



9. (Original) The Isystem of Claim 8, further comprising: 
a configuration lintegrity checker for checking integrity of software 

components in said system, wherein said possible breach is detected by said 
configuration integritjr checker. 

10. (Original) The system of Claim 1, further comprising: 
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logic for preventing login of the host device unless said first device 
coupled to toe host device. 

11. (Currently Amended) The system of Claim [[1]] 9, wherein said 
configuration integrity checker checks the integrity of software components 
residing in said host device. 

12. (Original)\The system of Claim 1, wherein said first device is 
physically coupled to the communication device, wherein the data 
transferred by thd communication device to the network is processed by said 
firewall before it ii transferred into the network and the data transferred 
from the network to the communication device passes through said firewall 

before it reaches thi host device. 

\ 

13. (Original) The\ system of Claim 12, wherein said physical connection 
is of the same medium as the network connection. 

\ 

14. (Original) The system of Claim 12, wherein said physical connection 
comprises an MPCI (Mini Peripheral Component Interconnect) adapter to 
couple said first device ito the communication device. 



15. (Original) The system of Claim 1, wherein said system further 

\ 

comprises a software driver in the host device, said driver operable to pass 
data that is received by the communication device to said first device to be 
processed by said firewall 



16. (Original) The system of Claim 15, wherein said software driver is 
further operable to pass daia which is to be transferred by the 
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communication device over the network to said first device to be processed 
by said firewall. 



17. (Original) The system of Claim 1, further comprising a software 
component installed above a driver for the communication device, said 
software component operable to route data for the communication device to 
said first devici 

V s 

18. (Original)! The system of Claim 17, wherein said software component 
is a shim that resides above a miniport driver. 



19. (Original) The system of Claim 1, further comprising a software 
component installed below a driver for the communication device, said 
software component operable to route data for the communication device to 
said first device. 

20. (Original) TheWstem of Claim 1, further comprising: 
transfer security logic residing on said first device, said transfer 

security logic for securely transferring data between said first device and a 
server in the network. 



21. (Original) The system of Claim 1, further comprising: 

a configuration integrity checker for checking integrity of software 

components in said system; 

an alert log for logging possible security breaches detected by said 

system; and 

a server for providing policies to be used by said firewall. 
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22. (Curren ;ly Amended) A method of providing security in a network 
having a comrmnication interface device that makes a network connection 
without a fireball in said com munication interface device, said method 
comprising: 

a) allowing a connection to said network to be established when using 
said communication interface device only if a firewall device comprising a 
hardware implemented firewall is coupled to a host device; 

b) receiving data from said network over said connection establish via 
said communication interface device; 

c) processing said data with said hardware implemented firewall; 
and \ 

d) transferring said data to said host device, wherein said data is 
processed by said hardware implemented firewall. 



23. (Original) The method of Claim 22, further comprising said host 
device routing said data to said firewall device to be processed by said 
hardware implementek firewall, said routing taking place at a physical 
layer in said data stacl 

24. (Original) The method of Claim 22, further comprising: 
e) sending policiek to said firewall device, wherein the operation of 

said hardware implemented firewall is modified. 



25. (Original) The metftiod of Claim 22, further comprising: 

e) performing a coi figuration integrity check of a software 
component on said host device. 



26. (Original) The method of Claim 25, wherein said configuration 
integrity check is performed before said network connection is allowed in 
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a), wherein\said connection is allowed only if said configuration integrity 
check passes. 

27. (Original) The method of Claim 25, wherein e) comprises performing 
said configuration integrity check by performing a hash on said software 
component to produce a hash value and comparing said hash value with a 
stored hash v^alue. 



28. (Original) The method of Claim 27, wherein said stored hash value 
resides on said\firewall device. 

29. (OriginalMThe method of Claim 27, further comprising: 

f) sending an alert if said configuration integrity check fails. 

30. (Original) The method of Claim 29, further comprising: 

g) storing ai^ alert if said configuration integrity check fails. 



31. (Original) Thi method of Claim 22, further comprising: 

e) swapping resource spaces in said host device that are reserved for 
said communication interface device and said firewall device, wherein said 
host device treats sain communication interface device as said firewall 
device and vice versa;! and 

f) said communication interface device transferring data received 
from said network in b) to said firewall device, wherein said firewall device 



processes said data wi 



32 



;h said hardware implemented firewall. 



(Original) The method of Claim 22, further comprising: 
e) transferring data to be transferred over said network by said 
communication interfacL device to said firewall device; and 
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wherein said 
before it is 
communicati 



f) processing said data with said hardware implemented firewall, 
data is processed by said hardware implemented firewall 
tr insferred over said network connection established via said 
on interface device. 



33. (Original) The method of Claim 32, wherein said e) comprises said 
host device routing said data to said firewall device before it is sent to said 
communication linterface device, said routing taking place at a physical 
layer in said datia stack. 



34. (Original) The method of Claim 22, further comprising: 

e) performing a configuration integrity check of a software 
component on sail host device; and 



f) sending p 



Llicies to 



i. 



said firewall device, wherein the operation of 



said hardware implemented firewall is modified. 



35. 



(Original) 
g) sending 



Tlie method of Claim 34, further comprising: 

alert if said configuration integrity check fails. 



an 



36. (Currently Amended) A firewall device for providing a hardware 
implemented firewall to a communication device for establishing a network 
connection, said firewall device comprising: 

a hardware implemented firewall; 

a data interface for receiving and sending data; 

first logic for allowing said network connection to be established 
using said communication device if said firewall device is coupled to said 
communication device, wherein said firewall device allows a connection to 
said netwo rk using skid communication device even if said communication 



device does not have a 
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37. (Original) The firewall device of Claim 36, further comprising: 
logic for performing a configuration integrity check of software 

components, saijd logic operable to produce a numeric value that results 

from said check; 

a stored v^lue for each software component to be checked for 

integrity; and 

logic to conipare said produced value with said stored value. 



38. (Original) The firewall device of Claim 36, wherein said first logic 
comprises stored values to be used in an authentication process during 
establishment of said network connection. 




39. (New) The system of Claim 1, wherein said hardware implemented 
firewall is dedicated to said host device. 
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